The piece seems to have been primarily reported this winter, just as Chatroulette was becoming a phenomenon and shortly before Ternovsky lit out for the United States. If you’re interested in digital media investing, there are a few tasty tidbits, like Union Square Ventures partner Fred Wilson’s assistance in arranging a visa for Ternovskiy, and the programmer’s disdain for Digital Sky Technologies’ Yuri Milner.

And there’s a tiny bit about Chatroulette’s finances, at least as of a couple months ago: Since Google (GOOG) wouldn’t get cut him an AdWords check, Ternovsky’s sole source of revenue was Mamba, a Russian dating service. But that was enough: He was generating $1,500 in advertising a day, which he said covered his costs. Still, there’s not much in the way of “news” here.

But make a point of reading Julia Ioffe’s story, which paints a compelling portrait of Ternovsky’s Moscow childhood. It’s going to seem both familiar and alien to a lot of you.

He was born on April 22, 1992, less than four months after the collapse of the Soviet Union, and grew up in a tidy apartment in a typically dingy Moscow high-rise. His mother, Elena, is a talented mathematician who works on differential equations at the élite Moscow State University. His father, Vladimir, is an associate professor of mathematics at the same university, and dabbles in cybernetics. Their household was loving but turbulent. The couple fought and frequently separated, and Vladimir started a parallel family, an issue that was never openly discussed. (“It’s a little game we play,” Elena said of the arrangement.) Andrey retreated to his room, where, thanks to Vladimir’s belief that “the future would have something to do with computers,” there was always a machine, as up to date as the family could afford. Vladimir invested great effort in Andrey’s upbringing, engaging a Chinese tutor, a weight-lifting coach, and a chess teacher. But most of Andrey’s learning occurred alone, with his computer. He started with games, usually of the reality-simulating variety. By fourth grade, he was writing code.

Like many young Russians with programming skills, Ternovskiy turned to hacking. When he was eleven, he came upon zloy.org (which translates as angry.org), a hacker forum led by a young man named Sergey (a.k.a. Terminator), who trained his followers in cyber warfare. Using the handle Flashboy, Ternovskiy soon mastered the art of the denial-of-service attack, wherein a target system is paralyzed by a mass of incoming communication requests. Next came Web-site and e-mail hacking, a service he gladly performed for girls who asked nicely. By 2007, at the age of fifteen, Ternovskiy had learned about what hackers call “social engineering”–getting what one wants through deceit or manipulation. Posing as a teacher, Ternovskiy got access to some practice tests before they were delivered to his school.

You can, and should, read the rest here.

These types of attacks are called “social engineering,” and they are used by criminals to steal your money and identity, and to plant on your computer malicious software that can be used to keep ripping you off. Social engineering is the online equivalent of an old-fashioned con game, in which a crook frightens people with false warnings, or tempts them with false promises, and then robs them.

While viruses and spyware overwhelmingly afflict Microsoft’s (MSFT) Windows users and spare users of Apple’s (AAPL) Macintosh computers, social-engineering schemes can ensnare Mac users as well. There’s nothing inherent in Macs that makes their owners more resistant to falling for social-engineering scams.

The most common form of social engineering is called phishing, a one-two punch using both email and Web browsing to trick people into typing confidential information into Web sites that look like the sites of real companies, especially financial institutions. But these phishing sites are actually skillfully designed fakes that transmit your sensitive data to criminals, often in distant countries. Once these creeps have your passwords and account numbers, they can loot your funds and steal your identity.

Here are some tips to help you avoid being the victim of social engineering, updated from a similar column I wrote in 2006. It includes information on some antiphishing software that wasn’t available back then. But remember: Security software alone can’t save you from scams.

1. Never, ever click on a link embedded in an email that appears to come from a financial institution, even if it’s your own bank or brokerage and even if it looks official right down to the logo. The same goes for payment or auction services, like PayPal or eBay (EBAY). Don’t do this even if the email asserts that your account has a problem, or that the bank has to verify your information. And certainly don’t enter any passwords, Social Security numbers or account numbers directly in an email.

These types of emails are almost always fakes, and the links they contain almost always lead to phony Web sites run by criminals. The only exception might be a confirmation email from a brokerage firm concerning a trade you know you made minutes before. Even legitimate-looking addresses in emails or in the address bar of Web browsers can be fakes that hide the crooks’ true Web addresses. The lock icon on a Web site can also be falsified.

If you are truly worried about your account, call the bank or company, or go to its Web site by manually typing in its address or by using a well-established bookmark in your browser that you created yourself.

2. Don’t click on links to offers for free software or goods that you receive in an email, especially from a sender or company you’ve never heard of.

3. Never download software from unfamiliar Web sites unless you are absolutely sure you need it and it’s legitimate. Even if it claims to be a useful program, it may very well be a malicious application like a “key logger,” which can report back to crooks everything you type into your computer. If you really want the program, do a Web search on it first, to see if others have reported it as a malicious fake.

4. If a Web site tells you that you need to download special viewing software to see its videos, don’t do it. Even if it claims to be giving you legitimate viewing software, like Microsoft’s Silverlight, Adobe’s (ADBE) Flash or Apple’s QuickTime, don’t download it there. Go to the official Microsoft, Adobe or Apple Web sites to get these viewers.

5. Use a Web browser, like Internet Explorer 7 on Windows, or Firefox 2.0 on Windows or Mac, that includes built-in features to warn you about, or block access to, known phishing sites. The next versions of these two browsers will have even stronger features that will detect sites that are not only fake, but which are known to distribute malicious software.

Unfortunately, the third major browser, Apple’s otherwise excellent Safari for Mac and Windows, lacks any such antiphishing detection, though I expect Apple to add the feature in a future version. So, for now, Mac users worried about phishing should rely on Firefox.

6. Consider security software that tries to detect and block phishing sites. McAfee’s (MFE) free Site Advisor and paid Site Advisor Plus products do a good job. Symantec (SYMC) has similar features built into its large security suites, Norton 360 2.0 and Norton Internet Security 2008.

7. Educate yourself by reading about social engineering and phishing and how to avoid being a victim. Microsoft has a very good guide at: microsoft.com/protect/yourself/phishing/identify.mspx and Symantec has one at: symantec.com/norton/clubsymantec/library/article.jsp?aid=cs_phishing.

Follow these tips and you’ll be a happier — and safer — surfer.

Find all of Walt Mossberg’s columns and videos online, free, at the new All Things Digital Web site, http://walt.allthingsd.com.

• Email him at mossberg@wsj.com.